HELLO AND WELCOME! Before you can post your question, you'll have to register -- it's completely free and registered users see less advertising! If you just want to browse through the existing questions, just select the forum that you want to visit from the selection below. Otherwise, click here to register!. We highly recommend that you print a copy of our Guide for New Members. Enjoy!

WARNING!!! FreeBSD 4.6 Borked...Bad FreeBSD!!!!

For those of you who use FreeBSD pre-4.6, be forewarned that 4.6 is fscked when it comes to firewalling and NAT. Not sure what the FreeBSD boys did, but they sure messed up this time.

Also, you must install wrapper if you want to launch X as non-root. That seems like one hell of a restrictive security measure!!! Like, would anyone want to run X all the time as root?

I used to enjoy FreeBSD but these latest &quot;improvements&quot; in 4.6 make me wonder what the boys are smoking.

You've been warned.

KORREKTION: You can get firewalling to work with IPFW but NAT seems broken...or, at least, it's so different from previous versions -- and there's no documentation -- that making it work is like doing something with Winblows. Bad FreeBSD.... :-X

Re:WARNING!!! FreeBSD 4.6 Borked...Bad FreeBSD!!!!

Also, you must install wrapper if you want to launch X as non-root. That seems like one hell of a restrictive security measure!!! Like, would anyone want to run X all the time as root?
[/quote]

You must've been used to installing XFree86 4.x by packages, because 'wrapper' has been needed since 4.0 came out. I use to compile it to start XFree as non-root on FreeBSD 4.4. So that's not new to 4.6.

Re:WARNING!!! FreeBSD 4.6 Borked...Bad FreeBSD!!!!

Also, you must install wrapper if you want to launch X as non-root. That seems like one hell of a restrictive security measure!!! Like, would anyone want to run X all the time as root?
[/quote]

You must've been used to installing XFree86 4.x by packages, because 'wrapper' has been needed since 4.0 came out. I use to compile it to start XFree as non-root on FreeBSD 4.4. So that's not new to 4.6.

[/quote]

Funny, never noticed it before with 3.3.6 or 4.X. Anyway, NAT is still broken, which is what I'm really pissed with... &gt;

Re:WARNING!!! FreeBSD 4.6 Borked...Bad FreeBSD!!!!

In my case, when I try to compile IPDIVERT into the kernel, the system hangs during the boot process. So, you could say that it might not be NAT proper that's broken, but IPDIVERT is.

For now, I'm running Mandy with an IPTABLES firewall/router that works just fine. Might have to dispense with FreeBSD or else give OpenBSD a whirl. Or, maybe I'll put Libranet or Slack on the partition where FreeBSD is now.